Diebold Election Results Released By AZ Judge

Windrip writes "A judge in the case covering the nature of the database used in Diebold Gems software during Pima County, Arizona elections has ruled the DB is not a computer program (pdf). The result is that the Arizona Democratic party will have the chance to review previous elections for transparency and accuracy. ''The Pima County Democratic Party sued the county this year for the electronic databases from past elections. The party requested the databases and passwords be released according to Arizona public-records law. Pima County denied that part of the request, while turning over other records the party asked for. In closing arguments of the four-day trial that began Dec. 4, Pima County argued the databases meet the definition of a computer program, which is protected by state law, said Deputy County Attorney Thomas Denker."

Good.

[yakumo.unr (833476)]

It's nice to see some judges can realise that a data set is not a program, I wonder how the previous decision really came about.

Re:Good.

[Arancaytar (966377)]

Presumably the same way that gems like "your RAM is evidence, do not delete" come about.

Re:

[Jhon (241832)]

Maybe someone asked the judge if a folder with paper in it is also a "wall cabinet", or if a book is also a "book case"?

Or maybe the judge is one of the rare of his/her breed which actually suffers from an ailment which seems to disqualify most from their profession -- common sense?

Re:Good.

[CastrTroy (595695)]

The data set is not a program, but the program required to interpret the dataset is. If the data files are in some binary proprietary format, there may not be an easy way to interpret what's in the data files without also having access to the program.

Then it would be defective by design

[Kupfernigk (1190345)]

Databases need to be available to be output in a standard format, and describable by a data dictionary. Data stored in a binary proprietary format which cannot be interpreted without reading the code of a program is NOT a database.

Why do I in any case guess that this database is either MSDE or SQL Express?

Re:

[Actually, I do RTFA (1058596)]

Why do I in any case guess that this database is either MSDE or SQL Express?

I thought Diebold used Access.

Re:

[CastrTroy (595695)]

I am pretty sure that I saw Access on Hacking Democracy. At least it looked a lot like Access. I don't remember seeing the Access Icon or splash screen though.

Re:

[cHiphead (17854)]

You are correct, its an .mdb Access db.

Re:

[Steauengeglase (512315)]

I'm sure that it has changed since then, but it was reported a few years ago that they were using MS Access MDBs. No, seriously.

Re:

[Steauengeglase (512315)]

A little old, but as I was saying: http://www.scoop.co.nz/stories/HL0309/S00106.htm/ [scoop.co.nz]

Access confirmed in the court ruling

[Dr_Barnowl (709838)]

The text of the PDF requires them to release "every file .. that ends with the extension 'gbf' or 'mdb', and the password for 'gbf' files." It also mentions that the data has been scrutineered with Access.

The arguments about an Access database being a "program" are probably related to the ability of MDB to contain queries (aka stored procedures).

GBF files are encrypted / compressed MDB files. The dockit claims that "a gbf file can only be created and opened by the GEMS program", but I suspect it unpacks them to a temporary file somewhere before it opens them up with the normal library.

Other little GEMS (sorry, couldn't resist the pun)...

  * "Microsoft has warned against using the mdb format for some critical applications, such as election management software."
  * Each expert witness endorsed a statement that the GEMS software has significant security flaws.

Re:

[CastrTroy (595695)]

Does Access let you compile an executable to send out to clients? It seems like it would be the final step to Access being a full application platform. Just make the entire application and self contained in the executable. That way, you could develop everything in access, and the users would just be presented with the interface you give them. Which would make it much easier to limit what they can do with the data, or order to have some level of data integrity. I wouldn't stop a determined hacker, but i

Re:

[dcavanaugh (248349)]

From ancient times, I remember there was such a thing as an Access "developer edition". It included the ability to take an .mdb file and create a "compiled" executable that was essentially the original .mdb file bundled with a crippled version of Access -- just enough to distribute a database and embedded VBA application to a computer that had nothing beyond ordinary Windows installed. It was a fragile solution -- many ways to screw it up. Along the same lines, the dev kit also included a freely distr

Re:

[Dr_Barnowl (709838)]

Oh, acknowledged, I've seen some real monstrosities written that way too. In this particular case though, the arguments are limited to quibbles about queries (confirmed by reading further down). GEMS is a separate application ; it would be trivial to demonstrate that an election system based on VBA was insecure, because the macros are available as source in the database file.

Re:

[morgan_greywolf (835522)]

OMFG. You are serious. The Jet database has long been considered deprecated by Microsoft [microsoft.com].

Re:

[sm62704 (957197)]

It's nice to see some judges can realise that a data set is not a program

Too bad Microsoft can't realise that! Of course, it's hard to impliment Dumb Restrictions on Music (DRM) without making your data file format (wma) also be a program. I can't understand why a plain word processing document should be a program though.

I'm surprised that they haven't come up with a photo file that your can write a virus in.

Data should be data and code should be code. The judge gets it, but unfortunately way too many compu

Hey now!

[Rob T Firefly (844560)]

In closing arguments of the four-day trial that began Dec. 4, Pima County argued the databases meet the definition of a computer program

In that case, all the filing cabinets in my office meet the definition of filing clerks, and should all be drawing salaries. Just write those checks out in my name, boss, I'll take care of the details...

Not again!

[slashname3 (739398)]

Why do they keep demanding recounts! Seems like the better approach would be to set out a platform that solves the basic problems for the majority of people. Instead they (both parties) spend time tearing down each other as well as themselves then run crying to the courts when things don't happen to fall their way.

Concentrate on solving the problems not trying to figure out some loop hole or proving some conspiracy and blaming others for not doing well at the polls.

I really wish there was a third party candidate that had a shot at winning.

Re:

[by Anonymous Coward]

Because if there was this 3rd part candidate capable of winning, the election could potentially be altered such that they do not win. If the elections aren't fair or aren't accurate, the most voted for candidate won't win. These people are just making an effort to ensure that the votes are counted properly.

Why does the Elections Office want to protect the data so much? Either they are protecting their own negligence or wrong doing. Either way, neither of those have a place in elections.

Re:

[TTURabble (1164837)]

Why do they keep demanding recounts!

Because of people like you, You can call everything a conspiracy theory and denounce it as crazy, but I'd rather have checks in place to make sure anyway.

There isn't any reason to go crying over spilled milk, but at the same time we should be working to make sure it won't spill again. This is one of the ways to make sure our next election is fair.

Take the 2004 election

[elrous0 (869638)]

Does it make you a conspiracy theorist to be suspicious and cautious when an election comes down to a few hundred votes in a state whose election commissioner was appointed by the brother of the winning candidate?!?! If it is, then give me my tin-foil hat, brother!

Re:

[elrous0 (869638)]

Oops, meant to say "2000 election"

Re:Not again!

[Falstius (963333)]

Yeah! And why bother investigating burglary, just buy better locks. No need to investigate embezzlement just have better accountants. Oh, and murder, pshaw. We should focus on inventing better medicine.

Accountability is important. There is not nearly enough of it in the American government, at any level.

Re:

[slashname3 (739398)]

When has a police department every really investigated a burglary? Maybe when it happens to some one in power or famous. In the real world police departments simply file some paper work and then go get some donuts. They don't investigate anything as lowly as a burglary.

Accountability is important. But after all these recounts and investigations there has not been anyone charged with voter fraud, just accusations and innuendo.

Politicians have been breed to win elections, not to solve the problems

Re:

[MonsterMasher (518641)]

If the data shows when the vote was done - which I'm sure it does - then
the data can be evaluated and stats worked up.

If someone was fooling with the vote count they would have to be very careful
in how they entered the data. Stats can be run one the distribution pattern and
non-random sequence of entries can be looked at closely.

Hell - every election voting database should be accessable on the net for any
election, so that ANYONE can run the numbers and take a look. look what happened
2004 election - someone w

Re:

[Maxo-Texas (864189)]

I agree with a lot of what you say but I must warn you that I've lied in every exit poll I ever participated in for philosophical reasons.

It's tricky to make the data public. We are trying to balance between a secret ballot and voting fraud. Database analysis makes it increasingly easy to tell exactly how people voted (esp in smaller districts) which puts people under pressure.

I do not think it is a powerful conservative group. It is a powerful wealthy and corporate group. The conservative is just a sha

/. exclusive - the DB schema

[by Anonymous Coward]

CREATE TABLE total_votes (
democrat_vote_total TINYINT,
republican_vote_total BIGINT
);

Re:/. exclusive - the DB schema

[geminidomino (614729)]

You forgot:

third_party_total BOOLEAN

Whoa!

[Opportunist (166417)]

*runs to window, checks sky... hmm... not falling? wtf?*

A judge who knows the difference between a database and a program. Now, if I can find a heterosexual masseur, I've seen anything I thought could not exist.

Re:

[thegnu (557446)]

Now, if I can find a heterosexual masseur, I've seen anything I thought could not exist.

I have two of them in my immediate family, fwiw. Glad I could help.
Cheers,
Nathan

A simple remark

[VincenzoRomano (881055)]

How is it possible in the 21st century in the USA that one uses electronic voting machines with one hand while publishing important documents as scanned images with the other one?

From The Article (not the PDF)

[TTURabble (1164837)]

"There is a significant risk these systems could be hacked or discredited," Denker said.

I pretty much think that this is the point; and it is an important point, because without the ability to call "bullshit" then you lose the legitimacy of the votes. Any corporation wouldn't trust an accountant to maintain the books without auditing them periodically, this is basically the same thing.

also, the systems can already be hacked (quite easily I believe)

Programs, Data, fuzzy distinctions

[Theovon (109752)]

A database file is just data, to be interpreted by a database program.
But the database program is just data to be interpreted by the CPU.

Data vs. document is a spectrum. There is no clear distinction. We tend to think of documents as just information, describing some structured knowledge, which is true. But by contrast, we tend to think of programs as containing primarily step-by-step instructions. But those instructions don't execute themselves. They're input to something. And moreover, not all programs are instructions. Consider Prolog, where the functions are described in terms of logical relationships, and the step-by-step instructions are inferred by the interpreter. Just because the Prolog program doesn't include instructions, per se, doesn't make us say it's not a program. At the same time, the distinction between a Prolog program and an expert system knowledge base (in term of form and function) is not clear.

Everything is just data. What makes it meaningful is the order and interpretation that we impose on it.

Re:

[mea37 (1201159)]

Yes and no. Most modern architectures blur the distinction by allowing data and code to reside in the same storage, and even allowing you to treat a section of memory as data at one moment and code at the next (which in theory allows for some neat self-modifying code (but that hasn't proven useful in the consumer market at least) but in practice is the root cause of every email virus ever).

The principle difference, though, is that code is functional while data is expressive. You can argue that this is a f

Re:Programs, Data, fuzzy distinctions

[tlhIngan (30335)]

Most modern architectures blur the distinction by allowing data and code to reside in the same storage, and even allowing you to treat a section of memory as data at one moment and code at the next (which in theory allows for some neat self-modifying code (but that hasn't proven useful in the consumer market at least) but in practice is the root cause of every email virus ever).

Actually, you're referring to Von Neumann architecture. The other architecture is Harvard. Harvard has separate code and data memory (mostly - you still get the convenience of immediate mode addressing in Harvard). But code can only work on data memory - it cannot work on code memory. However, it's only really useful for speciailized computers running the same code on different data (e.g., signal processing - the data is transformed the same way all the time, so the code can reside in ROM, while the data comes in from whatever source is providing it).

The Von Neumann architecture (code and data are intermingled, and one and the same) is your standard computer architecture. However, the behavior is used very often. Think every time you call exec() or CreateProcess() - the OS has to allocate memory, copy the code to memory (i.e., to the OS, your executable program is data), then tell the processor to run the code (now the data is code). Or even consider the bootstrap program - it has to find the OS loader program, which it copies off some storage to memory (data), then runs it (code). It's this architecture that makes modern computing possible...

Just base metal or dried pigment until viewed

[zooblethorpe (686757)]

A database file is just data, to be interpreted by a database program.
But the database program is just data to be interpreted by the CPU.

Data vs. document is a spectrum. There is no clear distinction. ...

Everything is just data. What makes it meaningful is the order and interpretation that we impose on it.

How very Hinduistically existential of you, actually. Quoting from a recent Natl. Geo. article, Faces of the Divine in the January 2008 issue (which I received earlier this week, thanks apparently to time-traveling magazine editors):

... Beauty meant nothing in itself: A work of art, whether a bronze statue of Shiva engaged in his cosmic dance of creating and destroying the universe or a painting of the Buddha attaining enlightenment under the bodhi tree, amounted to no more than base metal or dried pigment until a viewer responded to it. Seeing a painting or sculpture in a temple opened the minds of receptive worshippers to intimate communion with the divine. Seeing was believing.

Hindus call this intense participatory relationship with art an act of darshan, or "seeing" the deity. "Such seeing does not literally mean merely using one's eyes," according to art historian Vidya Dehejia, "but is a dynamic act of awareness." For the Buddhist monks and their patrons at Ajanta monastery, paintings of the Buddha served the same potent function, providing a key to revelation.

So I suppose what you describe would be the CPU's darshan of the code. (Though one could probably make a reasonable argument about which is data and which the program on the basis of specifically how dynamic the darshan needs to be to make sense of it.)

I find it somehow reassuring, and deeply cool, that certain wisdoms of the ancients can be perfectly relevant in wildly different contexts. It's also humbling to find how much our supposedly "primitive" ancestors got right in areas that we have forgotten or set aside. :)

Cheers,

Security by obscurity?

[argent (18001)]

If the security of the system depends on keeping the implementation secret, then it's not secure. Huckelberry's assertions are themselves an indictment of Diebold's product.

The craptaculous /. edit

[Windrip (303053)]

Those of you truly interested in this story should read the firehose version [slashdot.org].

I think the links in the firehose version of the story are more apropos to this post's tags.

Of particular concern to me is the replacement of one the original post's links with one that references a newspaper I consider to be a parody of press oversight. I would never source that bloated, piss-stained, corporate catamite in any post I write.

So, when /. writes "Windrip writes", they're lying. I didn't write what was posted on the front page of /. I didn't even provide one of the links in the story.

Nevertheless, of particular interest to /. readers might be the forensic study conducted on the DB. I found it here. [azag.gov]

While they're at it ....

[PPH (736903)]

... can we get a peek at the 2008 election results that Diebold is planning?

What happens when we find out Al Gore won?

[r_jensen11 (598210)]

Can we get the last 8 years of our lives back? How about the thousands of Americans that've died in combat, and the resulting 100,000+ innocent Iraqi's that've died as a consequence of this bastard?

Re:

[mrjb (547783)]

Imagine the votes sitting in a beowulf-cluster of puppet-controlled machines!

Re:

[Zordak (123132)]

Yes, don't you love how those scheming, conniving Republicans, who had only to push around a few bits to tweak the results, manipulated the elections to throw both houses of Congress to the Democrats last year? What a brilliant way to throw people off the scent! Now if they can just get Hillary in the White House, their diabolical strangle hold on power will be all but unbreakable! MUHAHAHA

Re:DIebold Defeats Democracy

[spleen_blender (949762)]

Just a hint, they both are the same thing. Don't trust either, fight both.

Re:

[nadaou (535365)]

Yeah right both parties are the same thing.

Prime example: Imagine the world today with a President Bush vs. a President Gore or President Kerry.

Both parties may share some of the same social diseases, and the fringe reactionary kooks of both parties are still reactionary kooks, but A==B? No way.

Re:DIebold Defeats Democracy

[dbcad7 (771464)]

who had only to push around a few bits

Close races are close races.. can go either way.. that's when manipulation is useful... If there is no doubt that someone was going to win, and they didn't, manipulation would be kind of noticeable wouldn't it ?

Re:

[elrous0 (869638)]

The 2006 election took place almost a year after the former CEO [wikipedia.org] of Diebold (a diehard Bush support and major Bush fundraiser) resigned.

Re:DIebold Defeats Democracy

[sm62704 (957197)]

Let me fix those typos for you:

Diebold is the corporation's choice for subverting democracy.

Imagine a world where people vote, but the votes don't matter because the corporations have bribed both wings of the single party in this plutocracy. They just sit in a machine controlled by puppets of the Corporation. We are living this dream.

Re:

[lenski (96498)]

And you base this opinion on what, precisely?

The fact that Diebold's central tabulator used Microsoft Access [equalccw.com]?

(Reported in several stories, notably a DVD called "Invisible Ballots")

That their hardware [blackboxvoting.org] is some of the most programmer-friendly ever (straight X86 CPU, SDcard, CompactFlash sockets)?

(This is a simplified, smaller version of a larger report. A quick Google search will reveal more.)

WindowsCE OS?

(Same report as above)

Executable Scripts on the ballot-definition CF cards?

(Demonstrated in "Invisible Bal

Re:

[lenski (96498)]

Myself, I try to stick to something like "there is some reason to doubt the integrity of the 2004 election, and the issue has never been throughly investigated".

In a word, yes.

I am very active in the central Ohio voting reform movement, and it is important to distinguish between statements I believe to be true versus statements that are demonstrably true. It's too easy to fall into a variety of traps and this work is far too important to lose credibility due to hyperbolic speech.

There is also the legal thre

Re:

[Red Flayer (890720)]

I could ask even the most unwashed user the different between a program and data and I'd guess they'd have some clue about the difference most of the time

RMS? Why yes, he'd have some clue, maybe even some expertise.

What? I keed, I keed...